MICROSOFT WINDOWS2003(Chinese version) ACTIVE DIRECTORY
MICROSOFT WINDOWS2003(chinese version) CA server
After testing, the VPN connection cannot be created if the display name of the account or OU is Chinese, and the error message is ¡°invalid certificate chain¡±. And then the awarded certificate name is: CN=#e99988e58d97£¬ cannot pass the VPN verification. But if the account display name or OU is English, the connection can be created successfully with the awarded certificate name as CN=TEST. This mean the name such as CN=#e99988e58d97 nonstandard name cannot pass the VPN verification. But in fact somebody has passed this certification by using this kind of nonstandard name successfully.
Furthermore£¬I also found that the CP supported Double byte¡£I establish a Chinese Account inside Checkpoint and use the Internal CA of Checkpoint to give certificate the Account¡£Then I use SECUCLINET to do the verification of VPN connection£¬that is OK¡£
